ci: add releases.toml automation for compatibility tracking
#21
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI | |
| on: | |
| push: | |
| branches: | |
| - master | |
| pull_request: | |
| release: | |
| types: [published] | |
| env: | |
| CARGO_TERM_COLOR: always | |
| RUSTFLAGS: -D warnings | |
| REGISTRY: ghcr.io | |
| RUST_VERSION: 1.90.0 | |
| NIGHTLY_RUST_VERSION: nightly-2025-09-28 | |
| jobs: | |
| cancel-previous-runs: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Cancel Previous Runs | |
| uses: styfle/cancel-workflow-action@0.9.1 | |
| with: | |
| access_token: ${{ github.token }} | |
| publish-codecov: | |
| name: Check code coverage (branch) | |
| runs-on: ubuntu-latest | |
| permissions: # Write access to push changes to pages | |
| contents: write | |
| pull-requests: write | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Install latest Rust | |
| uses: dtolnay/rust-toolchain@master | |
| with: | |
| toolchain: ${{ env.NIGHTLY_RUST_VERSION }} | |
| - name: Install cargo-llvm-codecov | |
| uses: taiki-e/install-action@cargo-llvm-cov | |
| - name: Code coverage report | |
| run: cargo +${{ env.NIGHTLY_RUST_VERSION }} llvm-cov --all-features --lcov --branch --output-path lcov.info | |
| - name: Setup LCOV | |
| uses: hrishikesh-kadam/setup-lcov@v1 | |
| - name: Report code coverage | |
| uses: zgosalvez/github-actions-report-lcov@v4 | |
| with: | |
| coverage-files: lcov.info | |
| minimum-coverage: 0 # for now we are not enforcing any minimum coverage. | |
| artifact-name: code-coverage-report | |
| github-token: ${{ secrets.GITHUB_TOKEN }} | |
| update-comment: true | |
| lint-toml-files: | |
| needs: cancel-previous-runs | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v2 | |
| - uses: actions-rs/toolchain@v1 | |
| with: | |
| toolchain: stable | |
| - name: Install Cargo.toml linter | |
| uses: baptiste0928/cargo-install@v1 | |
| with: | |
| crate: cargo-toml-lint | |
| version: "0.1" | |
| - name: Run Cargo.toml linter | |
| run: git ls-files | grep Cargo.toml$ | xargs --verbose -n 1 cargo-toml-lint | |
| - name: Notify if Job Fails | |
| uses: ravsamhq/notify-slack-action@v1 | |
| if: always() && github.ref == 'refs/heads/master' | |
| with: | |
| status: ${{ job.status }} | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| notification_title: '{workflow} has {status_message}' | |
| message_format: '{emoji} *{workflow}* {status_message} in <{repo_url}|{repo}> : <{run_url}|View Run Results>' | |
| footer: '' | |
| notify_when: 'failure' | |
| env: | |
| SLACK_WEBHOOK_URL: ${{ secrets.ACTION_MONITORING_SLACK }} | |
| cargo-verifications: | |
| needs: cancel-previous-runs | |
| runs-on: ubuntu-latest | |
| strategy: | |
| matrix: | |
| include: | |
| - command: fmt | |
| args: --all --verbose -- --check | |
| - command: clippy | |
| args: --all-targets --all-features | |
| - command: check | |
| args: --locked --all-targets --all-features | |
| - command: test | |
| args: --all-targets --all-features | |
| - command: test | |
| args: --all-targets --no-default-features | |
| # disallow any job that takes longer than 30 minutes | |
| timeout-minutes: 30 | |
| steps: | |
| - uses: actions/checkout@v2 | |
| - uses: actions-rs/toolchain@v1 | |
| with: | |
| toolchain: stable | |
| - uses: Swatinem/rust-cache@v1 | |
| with: | |
| key: "${{ matrix.command }}${{ matrix.args }}" | |
| - name: ${{ matrix.command }} ${{ matrix.args }} | |
| uses: actions-rs/cargo@v1 | |
| with: | |
| command: ${{ matrix.command }} | |
| args: ${{ matrix.args }} | |
| - name: Notify if Job Fails | |
| uses: ravsamhq/notify-slack-action@v1 | |
| if: always() && github.ref == 'refs/heads/master' | |
| with: | |
| status: ${{ job.status }} | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| notification_title: '{workflow} has {status_message}' | |
| message_format: '{emoji} *{workflow}* {status_message} in <{repo_url}|{repo}> : <{run_url}|View Run Results>' | |
| footer: '' | |
| notify_when: 'failure' | |
| env: | |
| SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_NOTIFY_BUILD }} | |
| RUSTFLAGS: -D warnings | |
| publish-crates: | |
| # Only do this job if publishing a release | |
| needs: | |
| - lint-toml-files | |
| - cargo-verifications | |
| if: github.event_name == 'release' && github.event.action == 'published' | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v2 | |
| - name: Install toolchain | |
| uses: actions-rs/toolchain@v1 | |
| with: | |
| toolchain: stable | |
| override: true | |
| - name: Verify tag version | |
| run: | | |
| curl -sSLf "https://github.com/TomWright/dasel/releases/download/v1.24.3/dasel_linux_amd64" -L -o dasel && chmod +x dasel | |
| mv ./dasel /usr/local/bin/dasel | |
| ./.github/workflows/scripts/verify_tag.sh ${{ github.ref_name }} | |
| - name: Publish crate | |
| uses: FuelLabs/publish-crates@v1 | |
| with: | |
| publish-delay: 30000 | |
| registry-token: ${{ secrets.CARGO_REGISTRY_TOKEN }} | |
| - name: Notify if Job Fails | |
| uses: ravsamhq/notify-slack-action@v1 | |
| if: always() | |
| with: | |
| status: ${{ job.status }} | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| notification_title: '{workflow} has {status_message}' | |
| message_format: '{emoji} *{workflow}* {status_message} in <{repo_url}|{repo}> : <{run_url}|View Run Results>' | |
| footer: '' | |
| notify_when: 'failure' | |
| env: | |
| SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_TOOLING }} | |
| build-release: | |
| name: build release binaries | |
| runs-on: ${{ matrix.job.os }} | |
| if: github.event_name == 'release' && github.event.action == 'published' | |
| needs: cancel-previous-runs | |
| strategy: | |
| matrix: | |
| job: | |
| - os: ubuntu-latest | |
| platform: linux | |
| target: x86_64-unknown-linux-gnu | |
| - os: ubuntu-latest | |
| platform: linux | |
| target: aarch64-unknown-linux-gnu | |
| - os: macos-latest | |
| platform: darwin | |
| target: x86_64-apple-darwin | |
| - os: macos-latest | |
| platform: darwin | |
| target: aarch64-apple-darwin | |
| steps: | |
| - name: Checkout sources | |
| uses: actions/checkout@v2 | |
| - name: Extract crate name from tag | |
| id: extract_crate | |
| run: | | |
| TAG="${GITHUB_REF#refs/tags/}" | |
| # Extract crate name (everything before the last version number) | |
| CRATE_NAME=$(echo "$TAG" | sed -E 's/-[0-9]+\.[0-9]+\.[0-9]+.*//') | |
| echo "crate_name=$CRATE_NAME" >> $GITHUB_OUTPUT | |
| echo "Building crate: $CRATE_NAME" | |
| - name: Install toolchain | |
| uses: actions-rs/toolchain@v1 | |
| with: | |
| profile: minimal | |
| toolchain: stable | |
| target: ${{ matrix.job.target }} | |
| override: true | |
| - uses: Swatinem/rust-cache@v1 | |
| with: | |
| cache-on-failure: true | |
| key: "${{ matrix.job.target }}" | |
| - name: Use Cross | |
| uses: baptiste0928/cargo-install@v1 | |
| with: | |
| crate: cross | |
| cache-key: "${{ matrix.job.target }}" | |
| - name: Build ${{ steps.extract_crate.outputs.crate_name }} | |
| run: | | |
| cross build --profile=release --target ${{ matrix.job.target }} -p ${{ steps.extract_crate.outputs.crate_name }} | |
| - name: Strip release binary x86_64-linux-gnu | |
| if: matrix.job.target == 'x86_64-unknown-linux-gnu' | |
| run: strip "target/${{ matrix.job.target }}/release/${{ steps.extract_crate.outputs.crate_name }}" | |
| - name: Strip release binary aarch64-linux-gnu | |
| if: matrix.job.target == 'aarch64-unknown-linux-gnu' | |
| run: | | |
| docker run --rm -v \ | |
| "$PWD/target:/target:Z" \ | |
| ghcr.io/cross-rs/aarch64-unknown-linux-gnu:main \ | |
| aarch64-linux-gnu-strip \ | |
| /target/aarch64-unknown-linux-gnu/release/${{ steps.extract_crate.outputs.crate_name }} | |
| - name: Strip release binary mac | |
| if: matrix.job.os == 'macos-latest' | |
| run: strip -x "target/${{ matrix.job.target }}/release/${{ steps.extract_crate.outputs.crate_name }}" | |
| - name: Prep assets | |
| id: prep_assets | |
| env: | |
| PLATFORM_NAME: ${{ matrix.job.platform }} | |
| TARGET: ${{ matrix.job.target }} | |
| CRATE_NAME: ${{ steps.extract_crate.outputs.crate_name }} | |
| run: | | |
| # Get tag name | |
| # See: https://github.qkg1.topmunity/t5/GitHub-Actions/How-to-get-just-the-tag-name/m-p/32167/highlight/true#M1027 | |
| TAG="${GITHUB_REF#refs/tags/}" | |
| echo "version is: $TAG" | |
| # setup artifact filename | |
| ARTIFACT="${TAG}-${{ env.TARGET }}" | |
| ZIP_FILE_NAME="$ARTIFACT.tar.gz" | |
| echo "ZIP_FILE_NAME=$ZIP_FILE_NAME" >> $GITHUB_ENV | |
| # create zip file | |
| mkdir -pv "$ARTIFACT" | |
| cp "target/${{ matrix.job.target }}/release/${CRATE_NAME}" "$ARTIFACT" | |
| tar -czvf $ZIP_FILE_NAME "$ARTIFACT" | |
| - name: Upload release archive | |
| uses: softprops/action-gh-release@v2 | |
| if: github.ref_type == 'tag' | |
| with: | |
| files: ${{ env.ZIP_FILE_NAME }} | |
| update-releases: | |
| name: Update releases.toml | |
| needs: publish-crates | |
| if: github.event_name == 'release' && github.event.action == 'published' | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: write | |
| pull-requests: write | |
| steps: | |
| - name: Checkout release tag | |
| uses: actions/checkout@v4 | |
| with: | |
| ref: ${{ github.ref }} | |
| - name: Extract crate info from tag | |
| id: extract | |
| run: | | |
| TAG="${{ github.ref_name }}" | |
| CRATE_NAME=$(echo "$TAG" | sed -E 's/-[0-9]+\.[0-9]+\.[0-9]+.*//') | |
| VERSION=$(echo "$TAG" | sed -E 's/^.*-([0-9]+\.[0-9]+\.[0-9]+.*)/\1/') | |
| echo "crate_name=$CRATE_NAME" >> $GITHUB_OUTPUT | |
| echo "version=$VERSION" >> $GITHUB_OUTPUT | |
| - name: Update releases.toml | |
| run: ./.github/workflows/scripts/update_releases.sh ${{ steps.extract.outputs.crate_name }} ${{ steps.extract.outputs.version }} | |
| - name: Create Pull Request | |
| uses: peter-evans/create-pull-request@v6 | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| base: main | |
| branch: chore/releases-${{ github.ref_name }} | |
| commit-message: "chore: update releases.toml for ${{ github.ref_name }}" | |
| title: "chore: update releases.toml for ${{ github.ref_name }}" | |
| body: | | |
| Auto-generated PR to update `releases.toml` after publishing `${{ github.ref_name }}`. | |
| This tracks the dependency versions used in this release for compatibility reference. | |
| labels: automated,releases |